Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit here or GitHub Ξ
Ξ If you're looking for tutorials/guides, check out the new https://cryptostorm.is/#section6 Ξ

replay mode bug in cryptofree tcp config

cryptofree: full-bore cryptostorm protection... for free! Capped to 1 megabit down / 500kb up, it's a great way to use cryptostorm in a pinch. Play nice & be safe, ok?

Topic Author
maltfield
Posts: 8
Joined: Mon Jul 24, 2017 2:47 am
Contact:

replay mode bug in cryptofree tcp config

Post by maltfield » Mon Jul 24, 2017 4:26 am

Hello,

I think I found a bug in the current openvpn config file for linux tcp:

* https://github.com/cryptostorm/cryptost ... p.ovpn#L53

Running the following:

Code: Select all

git clone https://github.com/cryptostorm/cryptostorm_client_configuration_files.git
cd cryptostorm_client_configuration_files/cryptofree/
sudo openvpn cryptofree_linux-tcp.ovpn
Produces the following output in devnull.txt:

Code: Select all

Options error: --replay-window only makes sense with --proto udp
Use --help for more information.
When I run this to comment-out the 'replay-window' option, it works:

Code: Select all

sed -i 's/\(replay-window 128 30\)/#\1/' cryptofree_linux-tcp.ovpn
I'm running xubuntu 16.04 w/ OpenVPN 2.3.10.

Is this replay-window option intentional? Are there any risks in removing it? If not, can this be fixed in the public repo (linked above)?

TIA!


lewqhrew

Re: replay mode bug in cryptofree tcp config

Post by lewqhrew » Wed Jul 26, 2017 6:24 pm

change that file extension to .conf?


Topic Author
maltfield
Posts: 8
Joined: Mon Jul 24, 2017 2:47 am
Contact:

Re: replay mode bug in cryptofree tcp config

Post by maltfield » Thu Jul 27, 2017 6:21 am

Thanks @qlyoung & @df for the fix

* https://github.com/cryptostorm/cryptost ... es/pull/16

Post Reply